Cisco s Appliance-based Content Security: IronPort and Web Security

Size: px
Start display at page:

Download "Cisco s Appliance-based Content Security: IronPort and Web Security"

Transcription

1 Cisco s Appliance-based Content Security: IronPort and Web Security Hrvoje Dogan Consulting Systems Engineer, Security, Emerging Markets East 2010 Cisco and/or its affiliates. All rights reserved. 1

2 Cisco Security The Power for Advanced Protection Cisco IronPort Security Appliance Cisco IronPort Web Security Appliance Update Q&A 2010 Cisco and/or its affiliates. All rights reserved. 2

3 2010 Cisco and/or its affiliates. All rights reserved. 3

4 Overview Most Accurate Protection Against a Broad Range of Threats Global Threat Telemetry Cisco Threat Operations Center Global Threat Telemetry Dynamic Updates and Actionable Intelligence www Adaptive Security Appliances Intrusion Prevention Solution Security Appliances Web Security Appliances System Administrators 2010 Cisco and/or its affiliates. All rights reserved. 4 4

5 Key Components Powerful Ecosystem Enables Fast, Accurate Protection World s biggest, broadest and best traffic monitoring network Cisco SensorBase Cisco Threat Operations Center Global operation provides high responsiveness and accuracy Dynamic updates and actionable intelligence ensure fast, accurate protection Advanced Protection 2010 Cisco and/or its affiliates. All rights reserved. 5 5

6 2010 Cisco and/or its affiliates. All rights reserved. 6

7 Before IronPort After IronPort Internet Internet Firewall Firewall Encryption Platform Anti-Spam MTA DLP Scanner Anti-Virus Policy Enforcement DLP Policy Manager IronPort Security Appliance Mail Routing Groupware Groupware Users Users 2010 Cisco and/or its affiliates. All rights reserved. 7 7

8 Management Inbound Security, Outbound Control INBOUND SECURITY Spam Defense Virus Defense CISCO IRONPORT ASYNCOS PLATFORM OUTBOUND CONTROL Data Loss Prevention Secure Messaging 2010 Cisco and/or its affiliates. All rights reserved. 8

9 SensorBase Reputation Filtering IronPort Anti-Spam Who? How? Verdict Where? What? Spam Blocked Before Entering Network > 99% Catch Rate < 1 in 1 million False Positives 2010 Cisco and/or its affiliates. All rights reserved. 9

10 Real Time Threat Prevention Known good is delivered Reputation Filtering IronPort Anti-Spam Suspicious is rate limited and spam filtered Incoming Mail Good, Bad, and Unknown Known bad is blocked Cisco on Cisco Our Corporate Experience Message Category % Messages Stopped by Reputation Filtering 93.1% 700,876,217 Stopped as Invalid recipients 0.3% 2,280,104 Spam Detected 2.5% 18,617,700 Virus Detected 0.3% 2,144,793 Stopped by Content Filter 0.6% 4,878,312 Total Threat Messages: 96.8% 728,797,126 Clean Messages 3.2% 24,102,874 Total Attempted Messages: 752,900, Cisco and/or its affiliates. All rights reserved

11 Defense in Depth Spam Protection Spam Botnets Spammer Networks SMS Spam Attachment-based Spam REPUTATION Who? What? MESSAGE CONTENT Verdict WEB REPUTATION Where? How? MESSAGE CONSTRUCTION Malware/Phishes Image Spam Short-Texted Spam with URLs Spam created using Automation Tools 2010 Cisco and/or its affiliates. All rights reserved

12 Management Inbound Security, Outbound Control INBOUND SECURITY Spam Defense Virus Defense CISCO IRONPORT ASYNCOS PLATFORM OUTBOUND CONTROL Data Loss Prevention Secure Messaging 2010 Cisco and/or its affiliates. All rights reserved. 12

13 Virus Outbreak Filters Anti-Virus Engines Zero Hour Virus and Malware Detection Complementary Anti-Virus Engines 2010 Cisco and/or its affiliates. All rights reserved. 13

14 Zero Hour Malware Prevention SensorBase Virus Outbreak Filters In Action Dynamic Quarantine Since VOF we have not had a single virus outbreak! INTERNET Virus Filter Over 24,000 virus positive messages stopped in 9 months Virus Outbreak Filters Advantage Average lead time* over 13 hours Outbreaks blocked* 291 outbreaks Total incremental protection*. over 157 days VOF has stopped more than 12,000 separate viral messages in the last year 2010 Cisco and/or its affiliates. All rights reserved. 14

15 Management Inbound Security, Outbound Control INBOUND SECURITY Spam Defense Virus Defense CISCO IRONPORT ASYNCOS PLATFORM OUTBOUND CONTROL Data Loss Prevention Secure Messaging 2010 Cisco and/or its affiliates. All rights reserved. 15

16 Simple Set Up Easy 3 click set-up using content filters Use pre-defined content categories or create / customize your own Can be applied to specific users under specific conditions 2010 Cisco and/or its affiliates. All rights reserved. 16

17 100+ Predefined Policies for Comprehensive Coverage 2010 Cisco and/or its affiliates. All rights reserved

18 Management Inbound Security, Outbound Control INBOUND SECURITY Spam Defense Virus Defense CISCO IRONPORT ASYNCOS PLATFORM OUTBOUND CONTROL Data Loss Prevention Secure Messaging 2010 Cisco and/or its affiliates. All rights reserved. 18

19 Single view of policies for the entire organization Categories: by Domain, Username, or LDAP Allow all media files Quarantine executables IT Mark and Deliver Spam Delete Executables SALES Archive all mail Virus Outbreak Filters disabled for.doc files IronPort Security Manager serves as a single, versatile dashboard to manage all the services on the appliance. PC Magazine LEGAL 2010 Cisco and/or its affiliates. All rights reserved. 19

20 Multiple data points Comprehensive Insight Unified Business Reporting Consolidated Reports Single view across the organization Real Time insight into traffic and security threats Volumes Spam Counters Policy Violations Virus Reports Outgoing Data Reputation Service System Health View Actionable drill down reports 2010 Cisco and/or its affiliates. All rights reserved. 20

21 Message Tracking What happened to the I sent 2 hours ago? Track Individual Messages Who else received similar s? Forensics to Ensure Compliance 2010 Cisco and/or its affiliates. All rights reserved. 21

22 2010 Cisco and/or its affiliates. All rights reserved. 22

23 Ubiquitous Path In and Out of Enterprise Networks Growing business web usage FTP SOAP IM RPC Video Growing tunneled apps usage HTTP is the New TCP 2010 Cisco and/or its affiliates. All rights reserved

24 Adressing Business Challenges Secure Against Malware Prevent Data Breaches Cisco IronPort S-Series Control Web Traffic and Applications 2010 Cisco and/or its affiliates. All rights reserved. 24

25 Consolidation Drives Operational Efficiency Before Cisco IronPort After Cisco IronPort Internet Internet Firewall Firewall Web Proxy and Caching Anti-Spyware Anti-Virus Anti-Phishing Cisco IronPort WSA URL Filtering Policy Management Users Users 2010 Cisco and/or its affiliates. All rights reserved

26 A Powerful, Secure Web Gateway Solution Most effective defense against web-based malware Visibility and control for acceptable use and data loss High performance to ensure best end-user experience Integrated solution offering optimum TCO Management and Reporting Acceptable Use Policy Malware Defense Data Security AsyncOS for Web 2010 Cisco and/or its affiliates. All rights reserved. 26

27 Visibility and Control for the Web and Web Applications Management and Reporting Acceptable Use Policy Malware Defense Data Security AsyncOS for Web Enterprise-class URL filtering Applications and object filtering Integrated identity and authentication 2010 Cisco and/or its affiliates. All rights reserved. 27

28 Cisco IronPort Web Usage Controls Leading Efficacy, Rich Controls, Comprehensive Visibility Control Per user, per group policies Multiple actions: block, warn, monitor Time-based policies Unlimited custom categories Custom end-user notifications Visibility Easy to understand reports Extensive logging Comprehensive alerting Efficacy 200+ countries 50+ languages 65 categories Less than 1 in 1 million false positives 2010 Cisco and/or its affiliates. All rights reserved. 28

29 Access Control Policy Instant Messaging Facebook: Limited Apps Video: 512 kbps max Employee in Finance Access Control Violation File Transfer over IM Facebook Chat, P2P Granular control over HTTP, HTTP(s), FTP applications Dynamic signature updates maintained by Cisco SIO Granular Control over Application Usage 2010 Cisco and/or its affiliates. All rights reserved

30 Edit Facebook Controls 2010 Cisco and/or its affiliates. All rights reserved

31 Chat Messages ( ) Events Notes Video Photos Places 3 rd Party Applications 2010 Cisco and/or its affiliates. All rights reserved. 31

32 Business Community Education Entertainment Games Sports Other Utilities Control 75K+ Facebook Applications 2010 Cisco and/or its affiliates. All rights reserved. 32

33 User-Specific Acceptable Use and Data Security Policies Authentication against LDAP servers Transparent, single sign-on (SSO) authentication against Active Directory Multi-realm sequencing Multi-domain authentication Guest policies Re-Auth and Failed Auth policies NTLM/Active Directory Define Acceptable Use and Data Security Policies using Rich Identity Constructs 2010 Cisco and/or its affiliates. All rights reserved. 33

34 Native control for HTTP, HTTP(s), FTP applications Selective decryption of SSL traffic for security and policy Policy enforcement for applications tunneled over HTTP FTP, IM, video Collaboration Software as a Service Tunneled Applications ftp://ftp.funet.fi/pub/ HTTP 2010 Cisco and/or its affiliates. All rights reserved. 34

35 Multiple layers for Malware and Spyware Protection Management and Reporting Acceptable Use Policy Malware Defense Data Security AsyncOS for Web Malware landscape Multi-layered malware defense Network layer phone-home prevention Reputation filtering and signature scanning 2010 Cisco and/or its affiliates. All rights reserved. 35

36 Protection Against Today s Threats Layer 4 Traffic Monitor Web Reputation Filters Dynamic Vectoring and Streaming Engine Detects malicious botnet traffic across all ports Blocks 70 percent of known and unknown malware traffic at connection time\ Blocks malware based on deep content analysis 2010 Cisco and/or its affiliates. All rights reserved. 36

37 Preventing Phone-Home Traffic Cisco IronPort Layer 4 Traffic Monitor Scans all traffic, all ports, all protocols Detects malware bypassing Port 80 Prevents botnet traffic Packet and Header Inspection Users Network Layer Analysis Powerful anti-malware data Automatically updated rules Real-time rule generation using Dynamic Discovery Cisco IronPort S-Series Internet 2010 Cisco and/or its affiliates. All rights reserved. 37

38 Predictive, Real-Time Threat Prevention 200+ Parameters URL Blacklists URL Whitelists Cisco Security Intelligence Operations Dynamic IP Addresses Bot Networks URL Behavior Global Volume Data Domain Registrar Information Compromised Host List Real-Time Cloud Analysis SensorBase Network Security Modeling Web Reputation Scores (WBRS) -10 to +10 Network Owners Known Threat URLs 2010 Cisco and/or its affiliates. All rights reserved. 38

39 Cisco IronPort DVS Engine Dynamic Vectoring and Streaming Accelerated signature scanning Parallel scans Stream scanning Multiple integrated verdict engines McAfee, Webroot and Sophos Automated updates Decrypt and scan SSL traffic Selectively, based on category and reputation 2010 Cisco and/or its affiliates. All rights reserved. 39

40 Simplicity and Choice Management and Reporting Acceptable Use Policy Malware Defense Data Security AsyncOS for Web Data security imperative and reality Simple on-box data security Advanced off-box data security 2010 Cisco and/or its affiliates. All rights reserved. 40

41 On-box Common Sense Security Content metadata inspection, along with visibility and forensics Allow, block, log Based on file metadata, URL category, user and web reputation Multi-protocol HTTP(s), FTP, HTTP tunneled Users Allow, Block, Log Internet Cisco and/or its affiliates. All rights reserved. 41

42 Simple Approach for Avoiding Web Data Breaches Who? John Smith, Finance John Smith, Finance Jane Doe, Sales What? FiscalPlan.xls FiscalPlan.xls CustomerList.doc Where? Webmail.com Taxfirm.com Personal-site.com, -9 Reputation score How? HTTPS (Encrypted) HTTPS (Encrypted) FTP Verdict 2010 Cisco and/or its affiliates. All rights reserved

43 2010 Cisco and/or its affiliates. All rights reserved. 43

44 AnyConnect Secure Mobility Anytime, Anywhere Secure Access Cisco AnyConnect 2.5 Always-on, location-aware, extremely lightweight, invisible to user Supported on all major devices and OS Cisco Security Enforcement Array (SEA) Powerful Enforcement Engines High Performance Application and Identity Aware Hybrid Hosted Delivery Policy Abstracted from enforcement layer Acceptable Use, Access Control, Data Security, Anti- Malware 2010 Cisco and/or its affiliates. All rights reserved

45 Industry s Highest-Performance Integrated Solution Secure Control Prevent Multi-layered malware defense Web reputation filters Accelerated signature scanning (DVS engine) Prevent botnets and malware bypassing Port 80 (L4TM) Integrated authentication and SSO Enterprise-class URL filtering Applications and object filtering Web usage visibility and tracking On-box simple data security Off-box interoperability with third-party DLP Prevent malwareinitiated data breaches (L4TM) 2010 Cisco and/or its affiliates. All rights reserved. 45

46 Thank you.

CISCO NETWORKS BORDERLESS Cisco Systems, Inc. All rights reserved. 1

CISCO NETWORKS BORDERLESS Cisco Systems, Inc. All rights reserved. 1 CISCO BORDERLESS NETWORKS 2009 Cisco Systems, Inc. All rights reserved. 1 Creating New Business Models The Key Change: Putting the Interaction Where the Customer Is Customer Experience/ Innovation Productivity/

More information

2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 1

2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 1 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 1 Cisco AnyConnect as a Service György Ács Regional Security Consultant Mobile User Challenges Mobile and Security Services Web Security

More information

Selftestengine q

Selftestengine q Selftestengine 700-281 49q Number: 700-281 Passing Score: 800 Time Limit: 120 min File Version: 18.5 http://www.gratisexam.com/ 700-281 Web Security for Field Engineers Still Valid in Egypt, Passed today

More information

Cisco AnyConnect Secure Mobility Solution. György Ács Regional Security Consultant

Cisco AnyConnect Secure Mobility Solution. György Ács Regional Security Consultant Cisco AnyConnect Secure Mobility Solution György Ács Regional Security Consultant Mobile User Challenges Mobile and Security Services Web Security Deployment Methods Live Q&A 2011 Cisco and/or its affiliates.

More information

Training UNIFIED SECURITY. Signature based packet analysis

Training UNIFIED SECURITY. Signature based packet analysis Training UNIFIED SECURITY Signature based packet analysis At the core of its scanning technology, Kerio Control integrates a packet analyzer based on Snort. Snort is an open source IDS/IPS system that

More information

IronPort C100 for Small and Medium Businesses

IronPort C100 for Small and Medium Businesses I R O N P O R T E M A I L S E C U R I T Y A P P L I A N C E S S I M P L E I N S TA L L AT I O N, E A S Y M A N A G E M E N T, A N D P O W E R F U L P R O T E C T I O N F O R Y O U R E M A I L I N F R A

More information

Release Notes for Cisco IronPort AsyncOS for Web

Release Notes for Cisco IronPort AsyncOS for Web Release Notes for Cisco IronPort AsyncOS 7.1.1 for Web Published: May 11, 2011 Contents This document contains release information for running Cisco IronPort AsyncOS AsyncOS 7.1.1 for the Web Security

More information

Sales Training

Sales Training Sales Training Extensible Content Security 16.03.2010 2009 WatchGuard Technologies Market Opportunity Total Addressable Market, ($M) Total Addressable Market by Segment, ($M) 16,000 14,000 11.2% CAGR 16,000

More information

EU GENERAL DATA PROTECTION: TIME TO ACT. Laurent Vanderschrick Channel Manager Belgium & Luxembourg Stefaan Van Hoornick Technical Manager BeNeLux

EU GENERAL DATA PROTECTION: TIME TO ACT. Laurent Vanderschrick Channel Manager Belgium & Luxembourg Stefaan Van Hoornick Technical Manager BeNeLux EU GENERAL DATA PROTECTION: TIME TO ACT Laurent Vanderschrick Channel Manager Belgium & Luxembourg Stefaan Van Hoornick Technical Manager BeNeLux Is this the WAY you handle GDPR today 2 3 area s to consider

More information

Office 365 Buyers Guide: Best Practices for Securing Office 365

Office 365 Buyers Guide: Best Practices for Securing Office 365 Office 365 Buyers Guide: Best Practices for Securing Office 365 Microsoft Office 365 has become the standard productivity platform for the majority of organizations, large and small, around the world.

More information

Release Notes for Cisco IronPort AsyncOS for Web

Release Notes for Cisco IronPort AsyncOS for Web Release Notes for Cisco IronPort AsyncOS 7.0.1 for Web Published: January 20, 2011 Contents This document contains release information for running Cisco IronPort AsyncOS AsyncOS 7.0.1 for the Web Security

More information

Cisco ASA Next-Generation Firewall Services

Cisco ASA Next-Generation Firewall Services Q&A Cisco ASA Next-Generation Firewall Services Q. What are Cisco ASA Next-Generation Firewall Services? A. Cisco ASA Next-Generation Firewall Services are a modular security service that extends the Cisco

More information

Release Notes for Cisco IronPort AsyncOS for Web

Release Notes for Cisco IronPort AsyncOS for Web Release Notes for Cisco IronPort AsyncOS 7.1.4-101 for Web Published: June 25, 2013 Contents This document contains release information for running Cisco IronPort AsyncOS AsyncOS 7.1.4 for the Web Security

More information

Contents. Introduction. WSA WebBase Network Participation

Contents. Introduction. WSA WebBase Network Participation Contents Introduction WSA WebBase Network Participation ESA SenderBase Network Participation General Security Concerns FAQ Operation SenderBase (Email) Network Participation Statistics shared per Emailappliance

More information

FIREWALL PROTECTION AND WHY DOES MY BUSINESS NEED IT?

FIREWALL PROTECTION AND WHY DOES MY BUSINESS NEED IT? WHAT IS FIREWALL PROTECTION AND WHY DOES MY BUSINESS NEED IT? While firewalls started life simply protecting networks from outside hacks and attacks, the role of the firewall has greatly evolved to take

More information

Release Notes for Cisco IronPort AsyncOS for Web

Release Notes for Cisco IronPort AsyncOS for Web Release Notes for Cisco IronPort AsyncOS 7.1.3 for Web Published: November 21, 2011 Contents This document contains release information for running Cisco IronPort AsyncOS AsyncOS 7.1.3 for the Web Security

More information

Data Sheet: Endpoint Security Symantec Multi-tier Protection Trusted protection for endpoints and messaging environments

Data Sheet: Endpoint Security Symantec Multi-tier Protection Trusted protection for endpoints and messaging environments Trusted protection for endpoints and messaging environments Overview creates a protected endpoint and messaging environment that is secure against today s complex data loss, malware, and spam threats controlling

More information

Release Notes for Cisco IronPort AsyncOS 7.0 for Web

Release Notes for Cisco IronPort AsyncOS 7.0 for Web Release Notes for Cisco IronPort AsyncOS 7.0 for Web Published: December 01, 2010 Contents This document contains release information for running Cisco IronPort AsyncOS AsyncOS 7.0 for the Web Security

More information

Future-ready security for small and mid-size enterprises

Future-ready security for small and mid-size enterprises First line of defense for your network Quick Heal Terminator (UTM) (Unified Threat Management Solution) Data Sheet Future-ready security for small and mid-size enterprises Quick Heal Terminator is a high-performance,

More information

Securing Your Business Against the Diversifying Targeted Attacks Leonard Sim

Securing Your Business Against the Diversifying Targeted Attacks Leonard Sim Securing Your Business Against the Diversifying Targeted Attacks Leonard Sim Manager, Client & Partner Services, Asia 1 Agenda 2010 Threats Targeted Attacks Defense Against Targeted Attacks Questions 2

More information

Hrvoje Dogan, Consulting Systems Engineer, Security, EM East Cisco and/or its affiliates. All rights reserved. Cisco Confiden:al 2

Hrvoje Dogan, Consulting Systems Engineer, Security, EM East Cisco and/or its affiliates. All rights reserved. Cisco Confiden:al 2 Hrvoje Dogan, Consulting Systems Engineer, Security, EM East 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confiden:al 2 Forward- Looking Statements Many of the products and features described

More information

New methods to protect the network. Deeper visibility with Cisco NGFW Next Generation Firewall

New methods to protect the network. Deeper visibility with Cisco NGFW Next Generation Firewall New methods to protect the network. Deeper visibility with Cisco NGFW Next Generation Firewall Claudiu Onisoru, Senior Network Specialist Cisco Connect - 15 May 2014 1 Agenda Frontal Communication: Who

More information

Cisco Security. Advanced Malware Protection. Guillermo González Security Systems Engineer Octubre 2017

Cisco Security. Advanced Malware Protection. Guillermo González Security Systems Engineer Octubre 2017 Cisco Security Advanced Malware Protection Guillermo González Security Systems Engineer Octubre 2017 The New Security Model Attack Continuum Before During After Before Discover During Detect After Scope

More information

Using Centralized Security Reporting

Using Centralized  Security Reporting This chapter contains the following sections: Centralized Email Reporting Overview, on page 1 Setting Up Centralized Email Reporting, on page 2 Working with Email Report Data, on page 4 Understanding the

More information

Quick Wins With DLP. Applying the Quick Wins process to deploy a high impact solution, Rich Mogul, Securosis. Sponsors of Today's Event:

Quick Wins With DLP. Applying the Quick Wins process to deploy a high impact solution, Rich Mogul, Securosis. Sponsors of Today's Event: Safeguarding the Digital World Quick Wins With DLP Applying the Quick Wins process to deploy a high impact solution, Rich Mogul, Securosis Sponsors of Today's Event: Today s Agenda Introduction Peer Group

More information

Getting Started with the Cisco Cloud Security

Getting Started with the Cisco Cloud  Security Getting Started with the Cisco Cloud Email Security This chapter contains the following sections: What's New in Async OS 11.1, on page 1 What s New in Async OS 11.0, on page 4 Where to Find More Information,

More information

Cisco Security Enterprise License Agreement

Cisco Security Enterprise License Agreement Cisco Security Enterprise License Agreement Deploy Software and Technology more easily The Cisco Security Enterprise Licensing Agreement (ELA) gives you a simpler way to manage your licenses. And it saves

More information

Hardening the Education. with NGFW. Narongveth Yutithammanurak Business Development Manager 23 Feb 2012

Hardening the Education. with NGFW. Narongveth Yutithammanurak Business Development Manager 23 Feb 2012 Hardening the Education IT Environment with NGFW Narongveth Yutithammanurak Business Development Manager 23 Feb 2012 Technology Trends Security Performance Bandwidth Efficiency Manageability Page 2 What

More information

Security Architect Northeast US Enterprise CISSP, GCIA, GCFA Cisco Systems. BRKSEC-2052_c Cisco Systems, Inc. All rights reserved.

Security Architect Northeast US Enterprise CISSP, GCIA, GCFA Cisco Systems. BRKSEC-2052_c Cisco Systems, Inc. All rights reserved. Web 2.0 Security Recommendations Ken Kaminski Security Architect Northeast US Enterprise CISSP, GCIA, GCFA Cisco Systems 1 Agenda Reputation Services Web application security Secure Coding and Web Application

More information

Cisco Next Generation Firewall Services

Cisco Next Generation Firewall Services Toronto,. CA May 30 th, 2013 Cisco Next Generation Firewall Services Eric Kostlan Cisco Technical Marketing 2011 2012 Cisco and/or its affiliates. All rights reserved. Cisco Connect 1 Objectives At the

More information

Tracking Messages

Tracking  Messages This chapter contains the following sections: Tracking Service Overview, page 1 Setting Up Centralized Message Tracking, page 2 Checking Message Tracking Data Availability, page 4 Searching for Email Messages,

More information

CloudSOC and Security.cloud for Microsoft Office 365

CloudSOC and  Security.cloud for Microsoft Office 365 Solution Brief CloudSOC and Email Security.cloud for Microsoft Office 365 DID YOU KNOW? Email is the #1 delivery mechanism for malware. 1 Over 40% of compliance related data in Office 365 is overexposed

More information

Release Notes for Cisco IronPort AsyncOS for Web

Release Notes for Cisco IronPort AsyncOS for Web Release Notes for Cisco IronPort AsyncOS 7.1.3-033 for Web Published: June 25, 2013 Revised: July 5, 2013 Contents This document contains release information for running Cisco IronPort AsyncOS AsyncOS

More information

Chapter 1: Content Security

Chapter 1: Content Security Chapter 1: Content Security Cisco Cloud Web Security (CWS) Cisco offers Cisco Cloud Web Security (CWS) to protect End Stations and Users devices from infection. Cisco Cloud Web Security (CWS) depends upon

More information

Modern attacks and malware

Modern attacks and malware Modern attacks and malware Everything starts with an email and web Dragan Novakovic Cisco Systems New Cyber Threat Reality Your environment will get breached You ll most likely be infected via email Hackers

More information

Managing SonicWall Gateway Anti Virus Service

Managing SonicWall Gateway Anti Virus Service Managing SonicWall Gateway Anti Virus Service SonicWall Gateway Anti-Virus (GAV) delivers real-time virus protection directly on the SonicWall security appliance by using SonicWall s IPS-Deep Packet Inspection

More information

Cisco Cloud Security. How to Protect Business to Support Digital Transformation

Cisco Cloud Security. How to Protect Business to Support Digital Transformation Cisco Cloud Security How to Protect Business to Support Digital Transformation Dragan Novakovic Cybersecurity Consulting Systems Engineer January 2018. Security Enables Digitization Digital Disruption,

More information

Cisco Security: Advanced Threat Defense for Microsoft Office 365

Cisco  Security: Advanced Threat Defense for Microsoft Office 365 Cisco Email Security: Advanced Threat Defense for Microsoft Office 365 Microsoft Office 365 has become the standard productivity platform in organizations large and small around the world. It is a cost-effective

More information

Cisco Firepower NGFW. Anticipate, block, and respond to threats

Cisco Firepower NGFW. Anticipate, block, and respond to threats Cisco Firepower NGFW Anticipate, block, and respond to threats Digital Transformation on a Massive Scale 15B Devices Today Attack Surface 500B Devices In 2030 Threat Actors $19T Opportunity Next 10 Years

More information

Product Guide. McAfee Web Gateway Cloud Service

Product Guide. McAfee Web Gateway Cloud Service Product Guide McAfee Web Gateway Cloud Service COPYRIGHT Copyright 2017 McAfee, LLC TRADEMARK ATTRIBUTIONS McAfee and the McAfee logo, McAfee Active Protection, epolicy Orchestrator, McAfee epo, McAfee

More information

File Reputation Filtering and File Analysis

File Reputation Filtering and File Analysis This chapter contains the following sections: Overview of, page 1 Configuring File Reputation and Analysis Features, page 5 File Reputation and File Analysis Reporting and Tracking, page 14 Taking Action

More information

Product Guide. McAfee Web Gateway Cloud Service

Product Guide. McAfee Web Gateway Cloud Service Product Guide McAfee Web Gateway Cloud Service COPYRIGHT Copyright 2017 McAfee, LLC TRADEMARK ATTRIBUTIONS McAfee and the McAfee logo, McAfee Active Protection, epolicy Orchestrator, McAfee epo, McAfee

More information

Security for the Cloud Era

Security for the Cloud Era Security for the Cloud Era Make the Most Out of Your Cloud Journey Fadhly Hassim Sales Engineer South East Asia & Korea Barracuda Networks Current Weather Situation Customer Provisions & Manage On-Premises

More information

Managing Graymail. Overview of Graymail. Graymail Management Solution in Security Appliance

Managing Graymail. Overview of Graymail. Graymail Management Solution in  Security Appliance This chapter contains the following sections: Overview of Graymail, on page 1 Graymail Management Solution in Email Security Appliance, on page 1 How Graymail Management Solution Works, on page 2 Configuring

More information

ADVANCED THREAT PREVENTION FOR ENDPOINT DEVICES 5 th GENERATION OF CYBER SECURITY

ADVANCED THREAT PREVENTION FOR ENDPOINT DEVICES 5 th GENERATION OF CYBER SECURITY ADVANCED THREAT PREVENTION FOR ENDPOINT DEVICES 5 th GENERATION OF CYBER SECURITY OUTLINE Advanced Threat Landscape (genv) Why is endpoint protection essential? Types of attacks and how to prevent them

More information

NetDefend Firewall UTM Services

NetDefend Firewall UTM Services NetDefend Firewall UTM Services Unified Threat Management D-Link NetDefend UTM firewalls (DFL-260/860/1660/2560/2560G) integrate an Intrusion Prevention System (IPS), gateway AntiVirus (AV), and Web Content

More information

Security Experts Webinar

Security Experts Webinar Security Experts Webinar Content Security Email and Web Fabio Panada Consulting Systems Engineer Security Mauro Pellicioli Systems Engineer May 2016 Content Security - Agenda Threat Landscape Cisco Approach

More information

Cisco Firepower NGFW. Anticipate, block, and respond to threats

Cisco Firepower NGFW. Anticipate, block, and respond to threats Cisco Firepower NGFW Anticipate, block, and respond to threats You have a mandate to build and secure a network that supports ongoing innovation Mobile access Social collaboration Public / private hybrid

More information

We re ready. Are you?

We re ready. Are you? We re ready. Are you? Defense against Multi-Vector Threats with Cisco Email and Web Security Usman Din Consulting Systems Engineer Agenda Threat Landscape Email and Web Solutions: Reputation Filtering

More information

Passit4Sure (50Q) Cisco Advanced Security Architecture for System Engineers

Passit4Sure (50Q) Cisco Advanced Security Architecture for System Engineers Passit4Sure.500-265 (50Q) Number: 500-265 Passing Score: 800 Time Limit: 120 min File Version: 5.8 Cisco 500-265 Advanced Security Architecture for System Engineers Today is big day for me as I passed

More information

Cloud Security & Advance Threat Protection. Cloud Security & Advance Threat Protection

Cloud  Security & Advance Threat Protection. Cloud  Security & Advance Threat Protection Cloud Email Security & Advance Threat Protection Cloud Email Security & Advance Threat Protection Overview Over the years Cyber criminals have become more inventive in their attack methods to infiltrate

More information

Synchronized Security

Synchronized Security Synchronized Security Revolutionizing Advanced Threat Protection Per Söderqvist Sales Engineer Nordics and Baltics 1 A Proven Market Leader Endpoint Encryption Leader UTM Unified Threat Management EPP

More information

Symantec & Blue Coat Technical Update Webinar 29. Juni 2017

Symantec & Blue Coat Technical Update Webinar 29. Juni 2017 Avantec Blue Coat/Symantec Webinar Jean Marc Edder Senior Systems Engineer The Global Leader in Cyber Network + + Cloud Global market leader in Endpoint, Email, Data Loss Prevention and Website, User Authentication

More information

IronPort X1000 Security System

IronPort X1000  Security System I r o n P o r t E M A I L S E C U R I T Y A P P L I A N C E S T H E U LT I M AT E E M A I L S E C U R I T Y S Y S T E M F O R T H E W O R L D S M O S T D E M A N D I N G N E T W O R K S. IronPort X1000

More information

Vendor: Cisco. Exam Code: Exam Name: ESFE Cisco Security Field Engineer Specialist. Version: Demo

Vendor: Cisco. Exam Code: Exam Name: ESFE Cisco  Security Field Engineer Specialist. Version: Demo Vendor: Cisco Exam Code: 650-153 Exam Name: ESFE Cisco Email Security Field Engineer Specialist Version: Demo Question No : 1 In the C-160's factory default configuration, which interface has ssh enabled

More information

Comprehensive datacenter protection

Comprehensive datacenter protection Comprehensive datacenter protection There are several key drivers that are influencing the DDoS Protection market: DDoS attacks are increasing in frequency DDoS attacks are increasing in size DoS attack

More information

IBM Security Network Protection Solutions

IBM Security Network Protection Solutions Systems IBM Security IBM Security Network Protection Solutions Pre-emptive protection to keep you Ahead of the Threat Tanmay Shah Product Lead Network Protection Appliances IBM Security Systems 1 IBM Security

More information

KASPERSKY ANTI-MALWARE PROTECTION SYSTEM BE READY FOR WHAT S NEXT. Kaspersky Open Space Security

KASPERSKY ANTI-MALWARE PROTECTION SYSTEM BE READY FOR WHAT S NEXT. Kaspersky Open Space Security KASPERSKY ANTI-MALWARE PROTECTION SYSTEM BE READY FOR WHAT S NEXT Open Space Security Cyber-attacks are real. Today alone, Lab technology prevented nearly 3 million of them aimed at our customers worldwide.

More information

Outbreak Filters. Overview of Outbreak Filters. This chapter contains the following sections:

Outbreak Filters. Overview of Outbreak Filters. This chapter contains the following sections: This chapter contains the following sections: Overview of, page 1 How Work, page 2 How the Feature Works, page 8 Managing, page 11 Monitoring, page 20 Troubleshooting The Feature, page 21 Overview of protects

More information

Fireware-Essentials. Number: Fireware Essentials Passing Score: 800 Time Limit: 120 min File Version: 7.

Fireware-Essentials.  Number: Fireware Essentials Passing Score: 800 Time Limit: 120 min File Version: 7. Fireware-Essentials Number: Fireware Essentials Passing Score: 800 Time Limit: 120 min File Version: 7.0 http://www.gratisexam.com/ Fireware Essentials Fireware Essentials Exam Exam A QUESTION 1 Which

More information

Sender Reputation Filtering

Sender Reputation Filtering This chapter contains the following sections: Overview of, on page 1 SenderBase Reputation Service, on page 1 Editing Score Thresholds for a Listener, on page 4 Entering Low SBRS Scores in the Message

More information

Cisco Security Appliances

Cisco  Security Appliances Data Sheet Cisco Email Security Appliances Product Overview Over the past 20 years, email has evolved from a tool used primarily by technical and research professionals to become the backbone of corporate

More information

Symantec Protection Suite Add-On for Hosted Security

Symantec Protection Suite Add-On for Hosted  Security Symantec Protection Suite Add-On for Hosted Email Security Overview Malware and spam pose enormous risk to the health and viability of IT networks. Cyber criminal attacks are focused on stealing money

More information

Compare Security Analytics Solutions

Compare Security Analytics Solutions Compare Security Analytics Solutions Learn how Cisco Stealthwatch compares with other security analytics products. This solution scales easily, giving you visibility across the entire network. Stealthwatch

More information

On the Surface. Security Datasheet. Security Datasheet

On the Surface.  Security Datasheet.  Security Datasheet Email Security Datasheet Email Security Datasheet On the Surface No additional hardware or software required to achieve 99.9%+ spam and malware filtering effectiveness Initiate service by changing MX Record

More information

Proteggere Office365 e Cloud file sharing in meno di un minuto Tiberio Molino Sr.Sales Engineer Trend Micro

Proteggere Office365 e Cloud file sharing in meno di un minuto Tiberio Molino Sr.Sales Engineer Trend Micro Proteggere Office365 e Cloud file sharing in meno di un minuto Tiberio Molino Sr.Sales Engineer Trend Micro 2 Customer Challenges 3 Most Attacks Include Phishing Emails 5 Advanced Malware Difficult to

More information

Reviewer s guide. PureMessage for Windows/Exchange Product tour

Reviewer s guide. PureMessage for Windows/Exchange Product tour Reviewer s guide PureMessage for Windows/Exchange Product tour reviewer s guide: sophos nac advanced 2 welcome WELCOME Welcome to the reviewer s guide for NAC Advanced. The guide provides a review of the

More information

Delivering Integrated Cyber Defense for the Cloud Generation Darren Thomson

Delivering Integrated Cyber Defense for the Cloud Generation Darren Thomson Delivering Integrated Cyber Defense for the Generation Darren Thomson Vice President & CTO, EMEA Region Symantec In 2009 there were 2,361,414 new piece of malware created. In 2015 that number was 430,555,582

More information

Pass4sure q. Cisco Securing Cisco Networks with Sourcefire IPS

Pass4sure q. Cisco Securing Cisco Networks with Sourcefire IPS Pass4sure.500-285.42q Number: 500-285 Passing Score: 800 Time Limit: 120 min File Version: 6.1 Cisco 500-285 Securing Cisco Networks with Sourcefire IPS I'm quite happy to announce that I passed 500-285

More information

AccessEnforcer Version 4.0 Features List

AccessEnforcer Version 4.0 Features List AccessEnforcer Version 4.0 Features List AccessEnforcer UTM Firewall is the simple way to secure and manage your small business network. You can choose from six hardware models, each designed to protect

More information

AT&T Endpoint Security

AT&T Endpoint Security AT&T Endpoint Security November 2016 Security Drivers Market Drivers Online business 24 x 7, Always on Globalization Virtual Enterprise Business Process / IT Alignment Financial Drivers CapEx / OpEx Reduction

More information

Cisco Advanced Malware Protection. May 2016

Cisco Advanced Malware Protection. May 2016 Cisco Advanced Malware Protection May 2016 The Reality Organizations Are Under Attack and Malware Is Getting in 95% of large companies targeted by malicious traffic 100% Cybercrime is lucrative, barrier

More information

Integrating Juniper Sky Advanced Threat Prevention (ATP) and ForeScout CounterACT for Infected Host Remediation

Integrating Juniper Sky Advanced Threat Prevention (ATP) and ForeScout CounterACT for Infected Host Remediation Integrating Juniper Sky Advanced Threat Prevention (ATP) and ForeScout CounterACT for Infected Host Remediation Configuration Example March 2018 2018 Juniper Networks, Inc. Juniper Networks, Inc. 1133

More information

Cisco Systems, Inc IronPort

Cisco Systems, Inc IronPort IronPort RSA Secured Implementation Guide for RSA DLP Network Partner Information Last Modified: December 5 th, 2012 Product Information Partner Name Cisco Systems, Inc Web Site www.cisco.com Product Name

More information

CipherCloud CASB+ Connector for ServiceNow

CipherCloud CASB+ Connector for ServiceNow ServiceNow CASB+ Connector CipherCloud CASB+ Connector for ServiceNow The CipherCloud CASB+ Connector for ServiceNow enables the full suite of CipherCloud CASB+ capabilities, in addition to field-level

More information

Web Application Firewall for Web Environments

Web Application Firewall for Web Environments Web Application Firewall Web-based solutions are being implemented for nearly every aspect of business operations, and increasingly for trusted environments with mission-critical business applications.

More information

Annexure E Technical Bid Format

Annexure E Technical Bid Format Annexure E Technical Bid Format ANTIVIRUS SOLUTION FOR MAIL SERVER SECURITY AND SERVER SECURITY FOR DESKTOP,LAPTOP Sr. No Description Compliance (Y/N) Remark 01 Must offer comprehensive client/server security

More information

Avanan for G Suite. Technical Overview. Copyright 2017 Avanan. All rights reserved.

Avanan for G Suite. Technical Overview. Copyright 2017 Avanan. All rights reserved. Avanan for G Suite Technical Overview Contents Intro 1 How Avanan Works 2 Email Security for Gmail 3 Data Security for Google Drive 4 Policy Automation 5 Workflows and Notifications 6 Authentication 7

More information

Symantec Security.cloud

Symantec  Security.cloud Data Sheet: Messaging Security filters unwanted messages and protects mailboxes from targeted attacks. The service has selflearning capabilities and Symantec intelligence to deliver highly effective and

More information

Secure solutions for advanced threats

Secure solutions for advanced  threats Secure solutions for advanced email threats Threat-centric email security Cosmina Calin Virtual System Engineer November 2016 Get ahead of attackers with threat-centric security solutions In our live Security

More information

The Eight Components of a Strong Cyber Security Defense System

The Eight Components of a Strong Cyber Security Defense System The Eight Components of a Strong Cyber Security Defense System SEG Secure Email Gateway An appliance that provides anti-spam and anti-malware protection. It is installed on top of a corporation s Email

More information

Corrigendum 3. Tender Number: 10/ dated

Corrigendum 3. Tender Number: 10/ dated (A premier Public Sector Bank) Information Technology Division Head Office, Mangalore Corrigendum 3 Tender Number: 10/2016-17 dated 07.09.2016 for Supply, Installation and Maintenance of Distributed Denial

More information

1110 Cool Things Your Firewall Should Do. Extend beyond blocking network threats to protect, manage and control application traffic

1110 Cool Things Your Firewall Should Do. Extend beyond blocking network threats to protect, manage and control application traffic 1110 Cool Things Your Firewall Should Do Extend beyond blocking network threats to protect, manage and control application traffic Table of Contents The Firewall Grows Up 1 What does SonicWALL Application

More information

Understanding the Pipeline

Understanding the  Pipeline This chapter contains the following sections: Overview of the Email Pipeline, page 1 Email Pipeline Flows, page 2 Incoming / Receiving, page 4 Work Queue / Routing, page 6 Delivery, page 10 Overview of

More information

Vendor: Cisco. Exam Code: Exam Name: Implementing Cisco Threat Control Solutions. Version: Demo

Vendor: Cisco. Exam Code: Exam Name: Implementing Cisco Threat Control Solutions. Version: Demo Vendor: Cisco Exam Code: 300-207 Exam Name: Implementing Cisco Threat Control Solutions Version: Demo DEMO QUESTION 1 When learning accept mode is set to auto, and the action is set to rotate, when is

More information

PineApp Mail Secure SOLUTION OVERVIEW. David Feldman, CEO

PineApp Mail Secure SOLUTION OVERVIEW. David Feldman, CEO PineApp Mail Secure SOLUTION OVERVIEW David Feldman, CEO PineApp Mail Secure INTRODUCTION ABOUT CYBONET CORE EXPERIENCE PRODUCT LINES FACTS & FIGURES Leader Product Company Servicing Multiple Vertical

More information

WORLD WIDE TECHNOLOGY Brief Overview

WORLD WIDE TECHNOLOGY Brief Overview WORLD WIDE TECHNOLOGY Brief Overview Justin Deckard 314.276.0045 Justin.Deckard@wwt.com NGB Account Rep Midwest Region CORE SOLUTIONS SECURE NETWORK INFRASTRUCTURE DATA CENTER COLLABORATION SUPPLY CHAIN

More information

Agile Security Solutions

Agile Security Solutions Agile Security Solutions Piotr Linke Security Engineer CISSP CISA CRISC CISM Open Source SNORT 2 Consider these guys All were smart. All had security. All were seriously compromised. 3 The Industrialization

More information

The Internet of Everything is changing Everything

The Internet of Everything is changing Everything The Internet of Everything is changing Everything Intelligent Threat Defense for the Enterprise Mobility Nikos Mourtzinos, CCIE #9763 Global Security Sales Organization Changing Business Models Any Device

More information

BIG-IP Access Policy Manager : Secure Web Gateway. Version 13.0

BIG-IP Access Policy Manager : Secure Web Gateway. Version 13.0 BIG-IP Access Policy Manager : Secure Web Gateway Version 13.0 Table of Contents Table of Contents BIG-IP APM Secure Web Gateway Overview...9 About APM Secure Web Gateway... 9 About APM benefits for web

More information

Simplify Technology Deployments

Simplify Technology Deployments Cisco Security Enterprise License Agreement: Simplify Technology Deployments The need for Pervasive Security Coverage Security measures can t be limited to certain areas of your business. Mobility has

More information

Symantec Ransomware Protection

Symantec Ransomware Protection Symantec Ransomware Protection Protection Against Ransomware Defense in depth across all control points is required to stop ransomware @ Email Symantec Email Security.cloud, Symantec Messaging Gateway

More information

THE SONICWALL CLEAN VPN APPROACH FOR THE MOBILE WORKFORCE

THE SONICWALL CLEAN VPN APPROACH FOR THE MOBILE WORKFORCE THE SONICWALL CLEAN VPN APPROACH FOR THE MOBILE WORKFORCE A Clean VPN approach delivers layered defense-in-depth protection for the core elements of business communications. Abstract The consumerization

More information

Anti-Virus. Anti-Virus Scanning Overview. This chapter contains the following sections:

Anti-Virus. Anti-Virus Scanning Overview. This chapter contains the following sections: This chapter contains the following sections: Scanning Overview, page 1 Sophos Filtering, page 2 McAfee Filtering, page 4 How to Configure the Appliance to Scan for Viruses, page 6 Sending an Email to

More information

Monitor System Activity Through Logs

Monitor System Activity Through Logs This chapter contains the following sections: Overview of Logging, page 1 Common Tasks for Logging, page 2 Best Practices for Logging, page 2 Troubleshooting Web Proxy Issues Using Logs, page 2 Log File

More information

Kerio Control. Unified Threat Management without Complexity. Presenters name. Presented by

Kerio Control. Unified Threat Management without Complexity. Presenters name. Presented by Kerio Control Unified Threat Management without Complexity Presented by Presenters name June 14, 2016 Agenda About Kerio About Kerio Control Kerio Control Benefits Kerio Control Licensing Summary About

More information

exam. Number: Passing Score: 800 Time Limit: 120 min File Version: CHECKPOINT

exam. Number: Passing Score: 800 Time Limit: 120 min File Version: CHECKPOINT 156-730.exam Number: 156-730 Passing Score: 800 Time Limit: 120 min File Version: 1.0 CHECKPOINT 156-730 Check Point Accredited Sandblast Administrator Version 1.0 Exam A QUESTION 1 Regarding a proper

More information

Un SOC avanzato per una efficace risposta al cybercrime

Un SOC avanzato per una efficace risposta al cybercrime Un SOC avanzato per una efficace risposta al cybercrime Identificazione e conferma di un incidente @RSAEMEA #RSAEMEASummit @masiste75 Mauro Costantini - Presales Consultant Agenda A look into the threat

More information

UTM Firewall Registration & Activation Manual DFL-260/ 860. Ver 1.00 Network Security Solution

UTM Firewall Registration & Activation Manual DFL-260/ 860. Ver 1.00 Network Security Solution UTM Firewall Registration & Activation Manual DFL-260/ 860 Ver 1.00 curitycu Network Security Solution http://security.dlink.com.tw 1.Introduction...02 2.Apply for a D-Link Membership...03 3.D-Link NetDefend

More information

Security Hands-On Lab

Security Hands-On Lab Email Security Hands-On Lab Ehsan A. Moghaddam Consulting Systems Engineer Nicole Wajer Consulting Systems Engineer LTRSEC-2009 Ehsan & Nicole Ehsan Moghaddam Consulting Systems Engineer @MoghaddamE EMEAR

More information